CVE-2017-7738 in FortiOSinfo

Zusammenfassung

von MITRE

An Information Disclosure vulnerability in Fortinet FortiOS 5.6.0 to 5.6.2, 5.4.0 to 5.4.5, 5.2 and below versions allow an admin user with super_admin privileges to view the current SSL VPN web portal session info which may contains user credentials through the fnsysctl CLI command.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

12.04.2017

Veröffentlichung

13.12.2017

Moderieren

akzeptiert

Eintrag

VDB-110672

CPE

bereit

CWE

CWE-200 (bestätigt)

CVSS

7.2 (NVD)

EPSS

0.00346

KEV

nein

Aktivitäten

very low

Sektor

Government, Police, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-7738
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-7738
CVE Details	https://www.cvedetails.com/cve/CVE-2017-7738/

◂ Zurück Übersicht Weiter ▸

Want to know what is going to be exploited?

We predict KEV entries!